Microsoft Cortana Vulnerability Allows Hackers to Browse With Your Locked Computer
A new privilege escalation vulnerability with Cortana allows an attacker with physical access to do unauthorized browsing on the locked …
Browsing: Vulnerability
VMware Released Critical Security Updates for Multiple Vulnerabilities Including L1 Terminal Fault
VMware has released Security patches that affected multiple products includes vSphere, Workstation, Fusion, and Virtual Appliances. …
Intel Reveals New Spectre-Like Vulnerability
There’s a new speculative execution side-channel vulnerability akin to Spectre and Meltdown, but this one is different in a crucial way: …
New Intel chip flaw “Foreshadow” attacks SGX technology to extract sensitive data
. But, to add to their misery, there is another possibly worst hardware flaw detected by security researchers in Intel chips. This flaw, …
Three More Intel Chip Exploits Surface
Not that we needed it, but there’s more evidence today that Intel has been playing fast and loose with security in order to stay ahead of …
New PHP Exploit Chain Highlights Dangers of Deserialization
PHP unserialization attacks have been well known for some time, but a new exploitation method explained last week at Black Hat USA in Las …
Adobe Released August Patch Covering 11 Vulnerabilities That Affects Multiple Popular Adobe Products
Adobe August security updates cover’s 11 security vulnerabilities including two critical vulnerabilities with the most popular Adobe …
Patch a Critical Vulnerability Found in Oracle
A critical vulnerability has discovered in the most popular and technology giant, Oracle. The company requested all users to patch on an …
July’s Most Wanted Malware: Attacks Targeting IoT and Networking Vulnerabilities on the Rise
SAN CARLOS, Calif., Aug. 15, 2018 (GLOBE NEWSWIRE) — Check Point® Software Technologies …
Networking vendors patch against new cryptographic attack
Vulnerable IPSec IKE implementations used in Cisco, Huawei, ZyXel and Clavister networking devices can allow attackers to retrieve session …
Your smart air conditioner could contribute to mass power outages
In March, the US blamed Russia for attacks on the power grid. The Department of Homeland Security (DHS) and the FBI called it a multi-stage …
Oracle Released Security Update Addresses a Critical Database Vulnerability That Affects Multiple Versions
Oracle released security updates covering Database vulnerability that affects multiple versions on Windows, Linux, and Unix. The …
Millions of Android Devices At Risk of Man-in-the-disk Attack
10 Powerful But Not Yet Promoted Antivirus for PC, Mac, Android, iPhone For your information, there are two types of storage systems in an …
Microsoft AD FS flaw allows attackers to bypass MFA safeguards
A vulnerability (CVE-2018-8340) in Microsoft Active Directory Federation Services (ADFS) allows a second authentication factor for one …
Hackers can use Fax machines to inject malware into a targeted network
Many corporations provide their fax number in the contact information page on the websites. After all, it is considered completely harmless …
Pacemaker controllers still vulnerable 18 months after flaws reported
A popular brand of heart pacemaker is still vulnerable to compromise more than a year and a half after the company that makes them was told …
Btlejacking Attack Could Allow a Hacker to Jam and Takeover the Bluetooth Connection
The Btlejacking Attack allows taking control over any Bluetooth Low Energy device, the attack abuses supervision timeout between two …
macOS Zero-day Flaw Allow Hackers to Bypass Kernel Protection by Invisible Mouse Click Attack
ero-day vulnerability that discovered in macOS High Sierra OS allows let an attacker access the kernel using invisible mouse clicks. …
Vulnerability Disclosures in 2018 So Far Outpacing Previous Years’
There appears to be little relief in sight for organizations hoping for some respite from patching. A new report from Risk Based Security …
[dos] PLC Wireless Router GPN2.4P21-C-CN – Denial of Service
# Exploit Title: PLC Wireless Router GPN2.4P21-C-CN Unauthenticated Remote Reboot # …
More Than 10K Recorded Vulnerabilities in 2018
The number of recorded vulnerability disclosures continues to rise, with 10,644 published throughout the first half of 2018 by Risk Based …
Can cramming code with bugs make it more secure? Some think so
Researchers at New York University have come up with an unconventional defensive technique that could ultimately deter attackers from even …
In-flight satellite comms vulnerable to remote attack, researcher finds
IOActive’s researcher Ruben Santamarta is the sort of person anyone interested in computer security would probably enjoy sitting next to …
Vulnerabilities in smart card drivers open systems to attackers
Security researcher Eric Sesterhenn of X41 D-SEC GmbH has unearthed a number of vulnerabilities in several smart card drivers, some of …
Over 10,000 vulnerabilities disclosed this year so far
27 mins ago 2018 looks like it’s on track to be another record year for vulnerabilities, with over 10,000 disclosed in the half year to …
Oracle warns of CVE-2018-3110 Critical Vulnerability in Oracle Database product, patch it now!
Last week Oracle disclosed a critical vulnerability in its Oracle Database product, the issue tracked as CVE-2018-3110 has received a …
80 to 0 in Under 5 Seconds: Falsifying a Medical Patient’s Vitals
The author thanks Shaun Nordeck, MD, for his assistance with this report. With the explosion of growth in technology and its influence on …
Hackers can remotely compromise a brand new Macbook as soon as it connects to a WiFi
Apple has been always credited with the security of the devices. However, it might not entirely be …
WhiteSource unveils free open source Vulnerability Checker
WhiteSource announced the release of its Vulnerability Checker, a free tool that provides companies with immediate, real-time alerts on the …
Vulnerabilities in mPOS devices could lead to fraud and theft
Vulnerabilities in mPOS (mobile point-of-sale) machines could allow malicious merchants to defraud customers and attackers to steal payment …